CVE-2026-2379
Arista EOS IPsec Tunnel Sequence Number Mismatch via Interface Flaps when Anti-Replay is Disabled
CVSS Score
5.9
EPSS Score
0.0%
EPSS Percentile
10th
On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features enabled, EOS may exhibit unexpected behavior in specific cases. Physical interface flaps and certain agent restarts can cause IPsec tunnel re-establishment with existing Security Associations, resulting in sequence number mismatches between tunnel endpoints potentially causing unstable communication.
| CWE | CWE-672 |
| Vendor | arista networks |
| Product | eos |
| Published | Jun 5, 2026 |
| Last Updated | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for arista networks eos
Be the first to know when new medium vulnerabilities affecting arista networks eos are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
Arista Networks / EOS
4.34.0 โค 4.34.3M 4.33.0M โค 4.33.5M 4.32.0M โค 4.32.7M 4.31.0M โค 4.31.9M 4.30.0F < 4.31.0 4.29.0F < 4.30.0 4.28.0F < 4.29.0 4.27.1F < 4.28.0